CentOS 3.3 shipped with an earlier version of mailman - mailman-2.0.13-5- in the extras repo. This version has not been supported since 3.4 was released, (http://www.centos.org/modules/news/article.php?storyid=34)however this version may be vulnerable to the exploit so it is recommended that all users upgrade.